Toggle navigation
Patchwork
OpenEmbedded Core Layer
Patches
Bundles
About this project
Login
Register
Mail settings
Show patches with
: none
| 21332 patches
Series
Submitter
State
any
Action Required
New
Under Review
Accepted
Rejected
RFC
Not Applicable
Changes Requested
Awaiting Upstream
Superseded
Deferred
Search
Archived
No
Yes
Both
Delegate
------
Nobody
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
gitpwbot
akuster
akuster
akuster
akuster
mototimo
mototimo
mototimo
kraj
kraj
denix
denix
reatmon
reatmon
rpurdie
rpurdie
rpurdie
rpurdie
sakoman
rossburton
rossburton
jonmason
Apply
«
1
2
...
113
114
115
…
213
214
»
Patch
Series
A/R/T
S/W/F
Date
Submitter
Delegate
State
[dunfell,03/12] vim: Upgrade 8.2.5034 -> 8.2.5083
[dunfell,01/12] cups: fix CVE-2022-26691
- - -
-
-
-
2022-06-19
Steve Sakoman
Accepted
[dunfell,03/13] curl: Fix CVE CVE-2022-35260
[dunfell,01/13] xserver-xorg: backport fixes for CVE-2022-3550, CVE-2022-3551 and CVE-2022-3553
- - -
-
-
-
2022-12-16
Steve Sakoman
Accepted
[dunfell,03/13] curl: fix CVE-2023-28320 siglongjmp race condition may lead to crash
[dunfell,01/13] libx11: Fix CVE-2023-3138 for dunfell branch
- - -
-
-
-
2023-07-18
Steve Sakoman
Accepted
[dunfell,03/13] libxpm: fix CVE-2022-46285
[dunfell,01/13] mdadm: Backport fix for CVE-2023-28736
- - -
-
-
-
2023-09-30
Steve Sakoman
Accepted
[dunfell,03/13] python3-setuptools: fix CVE-2022-40897
[dunfell,01/13] libx11: Fix for CVE-2023-43785 CVE-2023-43786 and CVE-2023-43787
- - -
-
-
-
2023-11-28
Steve Sakoman
Accepted
[dunfell,03/13] re2c: backport fix for CVE-2018-21232
[dunfell,01/13] libxml2: backport fix for CVE-2022-23308
- - -
-
-
-
2022-03-21
Steve Sakoman
Accepted
[dunfell,03/14] busybox: fix CVE-2022-28391
[dunfell,01/14] fribidi: Add fix for CVE-2022-25308, CVE-2022-25309 and CVE-2022-25310
- - -
-
-
-
2022-05-11
Steve Sakoman
Accepted
[dunfell,03/14] cve-update-nvd2-native: new CVE database fetcher
[dunfell,01/14] cups: Fix CVE-2023-32324
- - -
-
-
-
2023-06-22
Steve Sakoman
New
[dunfell,03/14] ghostscript: add CVE tag for check-stack-limits-after-function-evalution.patch
[dunfell,01/14] libarchive: fix CVE-2022-26280
- - -
-
-
-
2023-03-21
Steve Sakoman
Accepted
[dunfell,03/14] golang: fix CVE-2022-30632 and CVE-2022-30633
[dunfell,01/14] libtiff: CVE-2022-34526 A stack overflow was discovered
- - -
-
-
-
2022-08-29
Steve Sakoman
Accepted
[dunfell,03/14] openssh: Whitelist CVE-2016-20012
[dunfell,01/14] bluez: fix CVE-2021-0129
- - -
-
-
-
2021-12-22
Steve Sakoman
Accepted
[dunfell,03/14] openssl: Minor security upgrade 1.1.1o to 1.1.1p
[dunfell,01/14] cve-extra-exclusions: Clean up and ignore three CVEs (2xqemu and nasm)
- - -
-
-
-
2022-07-07
Steve Sakoman
New
[dunfell,03/14] openssl: update the epoch time for ct_test ptest
[dunfell,01/14] Revert "openssl: Backport fix for ptest cert expiry"
- - -
-
-
-
2022-06-08
Steve Sakoman
Accepted
[dunfell,03/14] qemu: Backport fix CVE-2023-3180
[dunfell,01/14] bind: Backport fix for CVE-2023-2828
- - -
-
-
-
2023-09-12
Steve Sakoman
Accepted
[dunfell,03/14] tiff: CVE-2022-3599.patch also fix CVE-2022-4645 CVE-2023-30774
[dunfell,01/14] curl: Backport fix CVE-2023-32001
- - -
-
-
-
2023-08-25
Steve Sakoman
Accepted
[dunfell,03/15] glibc: ignore CVE-2023-4527
[dunfell,01/15] kexec-tools: Ignore Fedora/RedHat specific CVE-2021-20269
- - -
-
-
-
2023-11-11
Steve Sakoman
Accepted
[dunfell,03/16] cve-update-db-native: avoid incomplete updates
[dunfell,01/16] cve-update-db-native: Allow to overrule the URL in a bbappend.
- - -
-
-
-
2023-01-25
Steve Sakoman
New
[dunfell,03/16] sudo: Fix CVE-2023-22809
[dunfell,01/16] qemu: Fix slirp determinism issue
- - -
-
-
-
2023-02-20
Steve Sakoman
Accepted
[dunfell,03/17] grub2: Fix Multiple CVEs
[dunfell,01/17] cups: Fix CVE-2023-34241
- - -
-
-
-
2023-07-08
Steve Sakoman
New
[dunfell,03/17] tiff: Security fix for CVE-2023-40745
[dunfell,01/17] kexec-tools: Ignore Fedora/RedHat specific CVE-2021-20269
- - -
-
-
-
2023-11-15
Steve Sakoman
Accepted
[dunfell,03/18] busybox: Fix for CVE-2021-42374
[dunfell,01/18] cve-extra-exclusions: add db CVEs to exclusion list
- - -
-
-
-
2021-12-03
Steve Sakoman
Accepted
[dunfell,03/18] go: fix CVE-2022-23772
[dunfell,01/18] libarchive: Fix for CVE-2021-36976
- - -
-
-
-
2022-03-04
Steve Sakoman
Accepted
[dunfell,03/18] rsync: fix CVE-2022-29154 remote arbitrary files write inside the directories of co…
[dunfell,01/18] grub2: CVE-2022-28735 shim_lock verifier allows non-kernel files to be loaded
- - -
-
-
-
2023-01-01
Steve Sakoman
Accepted
[dunfell,03/20] connman: fix CVE-2022-23098
[dunfell,01/20] expat: fix CVE-2022-23990
- - -
-
-
-
2022-02-21
Steve Sakoman
Accepted
[dunfell,03/20] grub: add a fix for CVE-2020-25632
[dunfell,01/20] glibc: update to lastest 2.31 release HEAD
- - -
-
-
-
2022-02-03
Steve Sakoman
Accepted
[dunfell,03/21] python3: Fix CVE-2022-45061
[dunfell,01/21] sudo: CVE-2022-43995 heap-based overflow with very small passwords
- - -
-
-
-
2022-11-19
Steve Sakoman
Accepted
[dunfell,03/22] libjpeg-turbo: patch CVE-2023-2804
[dunfell,01/22] ruby/cgi-gem: CVE-2021-33621 HTTP response splitting in CGI
- - -
-
-
-
2023-08-13
Steve Sakoman
Accepted
[dunfell,03/23] git: Security fix for CVE-2022-41903
[dunfell,01/23] curl: fix CVE-2022-43552 Use-after-free triggered by an HTTP proxy deny response
- - -
-
-
-
2023-03-07
Steve Sakoman
Accepted
[dunfell,03/42] linux-yocto/5.4: update to v5.4.156
[dunfell,01/42] linux-yocto/5.4: update to v5.4.154
- - -
-
-
-
2021-11-28
Steve Sakoman
Accepted
[dunfell,03/50] ruby: 2.7.4 -> 2.7.5
[dunfell,01/50] openssl: Add fix for CVE-2021-4160
- - -
-
-
-
2022-02-25
Steve Sakoman
Accepted
[dunfell,04/10] apt: backport patch fix for CVE-2020-3810
[dunfell,01/10] libsolv: fix CVE: CVE-2021-44568-71 and CVE-2021-44573-77
- - -
-
-
-
2022-03-27
Steve Sakoman
Accepted
[dunfell,04/10] busybox: Fix multiple security issues in awk
[dunfell,01/10] cve-extra-exclusions: add db CVEs to exclusion list
- - -
-
-
-
2021-12-13
Steve Sakoman
Accepted
[dunfell,04/10] glib-2.0: Fix multiple vulnerabilities
[dunfell,01/10] libtiff: Add fix for tiffcrop CVE-2023-1916
- - -
-
-
-
2023-10-17
Steve Sakoman
Accepted
[dunfell,04/10] go: fix CVE-2023-29402 & CVE-2023-29404
[dunfell,01/10] libjpeg-turbo: CVE-2020-35538 Null pointer dereference in jcopy_sample_rows() funct…
- - -
-
-
-
2023-06-30
Steve Sakoman
New
[dunfell,04/11] cve-check: add lockfile to task
[dunfell,01/11] valgrind: skip flakey ptest (gdbserver_tests/hginfo)
- - -
-
-
-
2022-01-13
Steve Sakoman
Accepted
[dunfell,04/11] dbus: Backport fix for CVE-2023-34969
[dunfell,01/11] cups: Backport fix for CVE-2023-32360 and CVE-2023-4504
- - -
-
-
-
2023-10-10
Steve Sakoman
Accepted
[dunfell,04/11] ffmpeg: Fix for CVE-2022-1475
[dunfell,01/11] ruby: Upgrade ruby to 2.7.6 for security fix
- - -
-
-
-
2022-06-02
Steve Sakoman
Accepted
[dunfell,04/11] golang: fix CVE-2022-24291
[dunfell,01/11] golang: fix CVE-2021-33195
- - -
-
-
-
2022-11-17
Ralph Siemsen
Accepted
[dunfell,04/11] golang: Fix CVE-2023-24539
[dunfell,01/11] ffmpeg: Fix CVE-2022-48434
- - -
-
-
-
2023-06-08
Steve Sakoman
New
[dunfell,04/11] libsndfile: fix CVE-2022-33065 Signed integer overflow in src/mat4.c
[dunfell,01/11] binutils 2.34: Fix CVE-2021-46174
- - -
-
-
-
2023-12-06
Steve Sakoman
Accepted
[dunfell,04/11] linux-yocto/5.4: update to v5.4.208
[dunfell,01/11] grub2: Fix several security issue of integer underflow
- - -
-
-
-
2022-08-10
Steve Sakoman
Accepted
[dunfell,04/11] pypi.bbclass: Set CVE_PRODUCT to PYPI_PACKAGE
[dunfell,01/11] git: fix CVE-2023-29007
- - -
-
-
-
2023-05-20
Steve Sakoman
New
[dunfell,04/11] qemu: fix CVE-2021-3638 ati-vga: inconsistent check in ati_2d_blt() may lead to out…
[dunfell,01/11] bluez: CVE-2022-3637 A DoS exists in monitor/jlink.c
- - -
-
-
-
2022-11-12
Steve Sakoman
Accepted
[dunfell,04/11] speex: fix CVE-2020-23903
[dunfell,01/11] expat fix CVE-2022-22822 through CVE-2022-22827
- - -
-
-
-
2022-01-20
Steve Sakoman
Accepted
[dunfell,04/11] vim: Upgrade 9.0.0021 -> 9.0.0063
[dunfell,01/11] qemu: CVE-2020-27821 heap buffer overflow in msix_table_mmio_write
- - -
-
-
-
2022-08-18
Steve Sakoman
Accepted
[dunfell,04/11] xz: fix CVE-2022-1271
[dunfell,01/11] vim: Upgrade 8.2.4524 -> 8.2.4681
- - -
-
-
-
2022-04-16
Steve Sakoman
Accepted
[dunfell,04/12] cve-update-nvd2-native: Remove duplicated CVE_CHECK_DB_FILE definition
[dunfell,01/12] libxml2: Backport fix for CVE-2024-25062
- - -
-
-
-
2024-03-20
Steve Sakoman
sakoman
Accepted
[dunfell,04/12] kernel-yocto.bbclass: Reset to exiting on non-zero return code at end of task
[dunfell,01/12] cups: fix CVE-2022-26691
- - -
-
-
-
2022-06-19
Steve Sakoman
Accepted
[dunfell,04/12] lttng-modules: update 2.11.7 -> 2.11.8
[dunfell,01/12] go: fix CVE-2022-1962 go/parser stack exhaustion in all Parse* functions
- - -
-
-
-
2023-02-04
Steve Sakoman
New
[dunfell,04/12] openssl: Add reproducibility fix
[dunfell,01/12] grub: fix CVE-2020-14372 and CVE-2020-27779
- - -
-
-
-
2022-01-09
Steve Sakoman
Accepted
[dunfell,04/12] unzip: Port debian fixes for two CVEs
[dunfell,01/12] golang: CVE-2022-24675 encoding/pem: fix stack overflow in Decode
- - -
-
-
-
2022-06-30
Steve Sakoman
Accepted
[dunfell,04/13] libarchive: CVE-2022-36227 NULL pointer dereference in archive_write.c
[dunfell,01/13] xserver-xorg: backport fixes for CVE-2022-3550, CVE-2022-3551 and CVE-2022-3553
- - -
-
-
-
2022-12-16
Steve Sakoman
Accepted
[dunfell,04/13] nasm: fix CVE-2022-44370
[dunfell,01/13] mdadm: Backport fix for CVE-2023-28736
- - -
-
-
-
2023-09-30
Steve Sakoman
Accepted
[dunfell,04/13] python3: fix CVE-2023-24329 urllib.parse url blocklisting bypass
[dunfell,01/13] libx11: Fix CVE-2023-3138 for dunfell branch
- - -
-
-
-
2023-07-18
Steve Sakoman
Accepted
[dunfell,04/13] qemu: backport fix for CVE-2020-13253
[dunfell,01/13] libxml2: backport fix for CVE-2022-23308
- - -
-
-
-
2022-03-21
Steve Sakoman
New
[dunfell,04/13] shadow: backport patch to fix CVE-2023-29383
[dunfell,01/13] libx11: Fix for CVE-2023-43785 CVE-2023-43786 and CVE-2023-43787
- - -
-
-
-
2023-11-28
Steve Sakoman
Accepted
[dunfell,04/14] cve-update-nvd2-native: added the missing http import
[dunfell,01/14] cups: Fix CVE-2023-32324
- - -
-
-
-
2023-06-22
Steve Sakoman
New
[dunfell,04/14] cve_check: Fix cpe_id generation
[dunfell,01/14] curl: Backport fix CVE-2023-32001
- - -
-
-
-
2023-08-25
Steve Sakoman
Accepted
[dunfell,04/14] e2fsprogs: CVE-2022-1304 out-of-bounds read/write via crafted filesystem
[dunfell,01/14] Revert "openssl: Backport fix for ptest cert expiry"
- - -
-
-
-
2022-06-08
Steve Sakoman
Accepted
[dunfell,04/14] golang: fix CVE-2022-30635 and CVE-2022-32148
[dunfell,01/14] libtiff: CVE-2022-34526 A stack overflow was discovered
- - -
-
-
-
2022-08-29
Steve Sakoman
Accepted
[dunfell,04/14] libksba: fix CVE-2022-3515
[dunfell,01/14] libarchive: fix CVE-2022-26280
- - -
-
-
-
2023-03-21
Steve Sakoman
Accepted
[dunfell,04/14] linux-yocto/5.4: update to v5.4.192
[dunfell,01/14] fribidi: Add fix for CVE-2022-25308, CVE-2022-25309 and CVE-2022-25310
- - -
-
-
-
2022-05-11
Steve Sakoman
Accepted
[dunfell,04/14] qemu: Backport fix for CVE-2023-0330
[dunfell,01/14] bind: Backport fix for CVE-2023-2828
- - -
-
-
-
2023-09-12
Steve Sakoman
Accepted
[dunfell,04/14] vim: 8.2.5083 -> 9.0.0005
[dunfell,01/14] cve-extra-exclusions: Clean up and ignore three CVEs (2xqemu and nasm)
- - -
-
-
-
2022-07-07
Steve Sakoman
New
[dunfell,04/14] vim: fix CVE-2021-4069
[dunfell,01/14] bluez: fix CVE-2021-0129
- - -
-
-
-
2021-12-22
Steve Sakoman
Accepted
[dunfell,04/15] libwebp: Fix CVE-2023-4863
[dunfell,01/15] kexec-tools: Ignore Fedora/RedHat specific CVE-2021-20269
- - -
-
-
-
2023-11-11
Steve Sakoman
Accepted
[dunfell,04/16] cve-update-db-native: show IP on failure
[dunfell,01/16] cve-update-db-native: Allow to overrule the URL in a bbappend.
- - -
-
-
-
2023-01-25
Steve Sakoman
New
[dunfell,04/16] git: CVE-2022-23521 gitattributes parsing integer overflow
[dunfell,01/16] qemu: Fix slirp determinism issue
- - -
-
-
-
2023-02-20
Steve Sakoman
Accepted
[dunfell,04/17] python3: upgrade to 3.8.17
[dunfell,01/17] cups: Fix CVE-2023-34241
- - -
-
-
-
2023-07-08
Steve Sakoman
New
[dunfell,04/17] tiff: backport Debian patch to fix CVE-2023-41175
[dunfell,01/17] kexec-tools: Ignore Fedora/RedHat specific CVE-2021-20269
- - -
-
-
-
2023-11-15
Steve Sakoman
Accepted
[dunfell,04/18] busybox: Fix for CVE-2021-42376
[dunfell,01/18] cve-extra-exclusions: add db CVEs to exclusion list
- - -
-
-
-
2021-12-03
Steve Sakoman
Accepted
[dunfell,04/18] expat: fix CVE-2022-25235
[dunfell,01/18] libarchive: Fix for CVE-2021-36976
- - -
-
-
-
2022-03-04
Steve Sakoman
Accepted
[dunfell,04/18] libx11: fix CVE-2022-3555 memory leak in _XFreeX11XCBStructure() of xcb_disp.c
[dunfell,01/18] grub2: CVE-2022-28735 shim_lock verifier allows non-kernel files to be loaded
- - -
-
-
-
2023-01-01
Steve Sakoman
Accepted
[dunfell,04/20] connman: fix CVE-2021-33833
[dunfell,01/20] expat: fix CVE-2022-23990
- - -
-
-
-
2022-02-21
Steve Sakoman
Accepted
[dunfell,04/20] grub: add a fix for CVE-2020-25647
[dunfell,01/20] glibc: update to lastest 2.31 release HEAD
- - -
-
-
-
2022-02-03
Steve Sakoman
Accepted
[dunfell,04/21] libtasn1: fix CVE-2021-46848 off-by-one in asn1_encode_simple_der
[dunfell,01/21] sudo: CVE-2022-43995 heap-based overflow with very small passwords
- - -
-
-
-
2022-11-19
Steve Sakoman
Accepted
[dunfell,04/22] go: fix CVE-2023-29406 net/http: insufficient sanitization of Host header
[dunfell,01/22] ruby/cgi-gem: CVE-2021-33621 HTTP response splitting in CGI
- - -
-
-
-
2023-08-13
Steve Sakoman
Accepted
[dunfell,04/23] bluez5: Exclude CVE-2022-39177 from cve-check
[dunfell,01/23] curl: fix CVE-2022-43552 Use-after-free triggered by an HTTP proxy deny response
- - -
-
-
-
2023-03-07
Steve Sakoman
Accepted
[dunfell,04/42] linux-yocto/5.4: update to v5.4.158
[dunfell,01/42] linux-yocto/5.4: update to v5.4.154
- - -
-
-
-
2021-11-28
Steve Sakoman
Accepted
[dunfell,04/50] puzzles: Upstream changed to main branch for development
[dunfell,01/50] openssl: Add fix for CVE-2021-4160
- - -
-
-
-
2022-02-25
Steve Sakoman
Accepted
[dunfell,05/10] ghostscript: fix CVE-2020-15900 and CVE-2021-45949 for -native
[dunfell,01/10] libsolv: fix CVE: CVE-2021-44568-71 and CVE-2021-44573-77
- - -
-
-
-
2022-03-27
Steve Sakoman
Accepted
[dunfell,05/10] libcap: backport Debian patches to fix CVE-2023-2602 and CVE-2023-2603
[dunfell,01/10] libjpeg-turbo: CVE-2020-35538 Null pointer dereference in jcopy_sample_rows() funct…
- - -
-
-
-
2023-06-30
Steve Sakoman
New
[dunfell,05/10] libwebp: Update CVE ID CVE-2023-4863
[dunfell,01/10] libtiff: Add fix for tiffcrop CVE-2023-1916
- - -
-
-
-
2023-10-17
Steve Sakoman
Accepted
[dunfell,05/10] wic:direct.py: ignore invalid mountpoints during fstab update
[dunfell,01/10] cve-extra-exclusions: add db CVEs to exclusion list
- - -
-
-
-
2021-12-13
Steve Sakoman
Accepted
[dunfell,05/11] binutils: stable 2.34 branch updates
[dunfell,01/11] bluez: CVE-2022-3637 A DoS exists in monitor/jlink.c
- - -
-
-
-
2022-11-12
Steve Sakoman
Accepted
[dunfell,05/11] dbus: Add missing CVE_PRODUCT
[dunfell,01/11] cups: Backport fix for CVE-2023-32360 and CVE-2023-4504
- - -
-
-
-
2023-10-10
Steve Sakoman
Accepted
[dunfell,05/11] epiphany: fix CVE-2022-29536
[dunfell,01/11] binutils 2.34: Fix CVE-2021-46174
- - -
-
-
-
2023-12-06
Steve Sakoman
Accepted
[dunfell,05/11] git: Ignore CVE-2022-24975
[dunfell,01/11] vim: Upgrade 8.2.4524 -> 8.2.4681
- - -
-
-
-
2022-04-16
Steve Sakoman
Accepted
[dunfell,05/11] go: Security fix CVE-2023-24540
[dunfell,01/11] ffmpeg: Fix CVE-2022-48434
- - -
-
-
-
2023-06-08
Steve Sakoman
New
[dunfell,05/11] golang: fix CVE-2022-28131
[dunfell,01/11] golang: fix CVE-2021-33195
- - -
-
-
-
2022-11-17
Ralph Siemsen
Accepted
[dunfell,05/11] linux-firmware: upgrade 20230210 -> 20230404
[dunfell,01/11] git: fix CVE-2023-29007
- - -
-
-
-
2023-05-20
Steve Sakoman
New
[dunfell,05/11] linux-yocto/5.4: update to v5.4.169
[dunfell,01/11] expat fix CVE-2022-22822 through CVE-2022-22827
- - -
-
-
-
2022-01-20
Steve Sakoman
Accepted
[dunfell,05/11] linux-yocto/5.4: update to v5.4.209
[dunfell,01/11] grub2: Fix several security issue of integer underflow
- - -
-
-
-
2022-08-10
Steve Sakoman
Accepted
[dunfell,05/11] ncurses: Fix CVE-2022-29458
[dunfell,01/11] ruby: Upgrade ruby to 2.7.6 for security fix
- - -
-
-
-
2022-06-02
Steve Sakoman
Accepted
[dunfell,05/11] vim: update from 9.0.0063 to 9.0.0115
[dunfell,01/11] qemu: CVE-2020-27821 heap buffer overflow in msix_table_mmio_write
- - -
-
-
-
2022-08-18
Steve Sakoman
Accepted
[dunfell,05/11] xserver-xorg: update CVE_PRODUCT
[dunfell,01/11] valgrind: skip flakey ptest (gdbserver_tests/hginfo)
- - -
-
-
-
2022-01-13
Steve Sakoman
Accepted
[dunfell,05/12] alsa-plugins: fix libavtp vs. avtp packageconfig
[dunfell,01/12] cups: fix CVE-2022-26691
- - -
-
-
-
2022-06-19
Steve Sakoman
Accepted
[dunfell,05/12] cve-check: add support for Ignored CVEs
[dunfell,01/12] golang: CVE-2022-24675 encoding/pem: fix stack overflow in Decode
- - -
-
-
-
2022-06-30
Steve Sakoman
Accepted
[dunfell,05/12] cve-update-nvd2-native: nvd_request_next: Improve comment
[dunfell,01/12] libxml2: Backport fix for CVE-2024-25062
- - -
-
-
-
2024-03-20
Steve Sakoman
sakoman
Accepted
[dunfell,05/12] lttng-modules: update 2.11.8 -> 2.11.9
[dunfell,01/12] go: fix CVE-2022-1962 go/parser stack exhaustion in all Parse* functions
- - -
-
-
-
2023-02-04
Steve Sakoman
New
«
1
2
...
113
114
115
…
213
214
»